SQL Injection Vulnerability in Johnny_Vegas Vegas Forum 1.0
CVE-2006-1020

Currently unrated

Key Information:

Vendor: Johnny Vegas
Status: Vegas Forum
Vendor: CVE Published:; 7 March 2006

🔔 Create Johnny Vegas Vulnerability Alert

What is CVE-2006-1020?

A SQL injection vulnerability in the forumlib.php file of Johnny_Vegas Vegas Forum 1.0 allows remote attackers to execute arbitrary SQL commands by manipulating the postid parameter. This vulnerability can compromise the integrity of the database, leading to potential data exposure and unauthorized access. Users are encouraged to update to a patched version to mitigate risks and protect their systems.

References

http://www.securityfocus.com/bid/17079

vdb-entryx_refsource_BID

http://secunia.com/advisories/19219

third-party-advisoryx_refsource_SECUNIA

http://securityreason.com/securityalert/574

third-party-advisoryx_refsource_SREASON

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 7, 2006
Vulnerability Reserved
Mar 6, 2006